You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardexpand all lines: ERCs/ERC5XX1 draft.md
+6-3
Original file line number
Diff line number
Diff line change
@@ -26,17 +26,20 @@ This ERC describes how to assert the authenticity of the script related to some
26
26
27
27
Often NFT authors want to provide some user functionality to their tokens through client scripts. This should be done safely, without opening the user to potential scams. Refer to ERC xxxx examples of such scripts.
28
28
29
-
Although ERC xxxx specified a way to obtain a set of client scripts through URI, in many cases, it is:
29
+
Although ERC xxxx specified a way to obtain a set of client scripts through URI, it is inapplicable for token contracts that was issued before the creation of ERC xxxx. Furthermore, it lack the finess to address situations such as
30
30
31
-
- insufficient: For example, a smart contract might have a script for different environments or use-cases. Take a subway token as an example. It might invoke a minimal script to drive the purchase and use of subway tokens in order to send them through NFC (Internet might be slow or inaccessible underground).
31
+
- a smart contract might have different scripts for different environments or use-cases. Take a subway token as an example. It might invoke a minimal script at the POS to be sent through NFC (Internet might be slow or inaccessible underground), while advanced functions for user retention, such as rewarding user mascot NFT for continued use, or carbon credit for buying carbon-neutral airfare.
32
+
- in a specific use case, a token's script is often localized, and it doesn't make sense to download and load all language translations.
33
+
- a specific use-case might be compatible with only a specific version of the token's script.
32
34
33
-
- inapplicable: For example for token contracts that was issued before the creation of ERC xxxx.
35
+
ERC xxxx returns an all-purpose, one-version of script for use on the client side ignoring the nuances.
34
36
35
37
This ERC offers a way to assert authenticity of such client scripts disregarding how it is obtained, and can work with smart contracts *prior* to the publication of this ERC.
36
38
37
39
### Overview
38
40
39
41
Although the *token/smart contract author* and the *client script author* can be the same person/team, we will assume they are different people in this ERC, and the case that they are the same person/team can be implied.
42
+
40
43
The steps needed to ensure script authenticity can be summarized as follows:
41
44
42
45
1. The *script author* creates a *script signing key*, which has an associates *verification key address*.
0 commit comments